CVE-2023-48268

Name of the Vulnerable Software and Affected Versions Mattermost (affected versions not specified)

Description The issue allows an attacker to consume excessive resources, possibly leading to Denial of Service, by importing a board using a specially crafted zip (zip bomb) in Mattermost Boards. This occurs because Mattermost fails to limit the amount of data extracted from compressed archives during board import.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.